I am working as a Data Scientist at Rxlogix & like deploy Azure Custom Language Translator for our Clients.
But there are few Questions/Concerns on which Client wants to get clarification.
1) Data Access while stored in Active Directory
Concern :-- I understand that Rxlogix Data remains only in Azure Active Directory and no other Client can access it but need to know what are actual circumstances in which MicroSoft Engineers can access the Client’s (Rxlogix) Data. This is based on these Two points mentioned in Section - “Isolation from Microsoft Administrators & Data Deletion” in Reference doc #2.
Two Points
1.1) Microsoft engineers do not have default access to your data in the cloud. Instead, they are granted access, under management oversight, only when necessary. That access is carefully controlled and logged, and revoked when it is no longer needed.
1.2) Microsoft may hire other companies to provide limited services on its behalf. Subcontractors may access customer data only to deliver the services for which, we have hired them to provide, and they are prohibited from using it for any other purpose. Further, they are contractually bound to maintain the confidentiality of our customers’ information.
2) Data Access while Training Model
Concern :-- Can Model Training for Custom Translator occur in Dedicated Machines so that no Data moves out of the system. We actually like to know what happens to data when Model Training occurs.
Reference Docs -
1) https://docs.microsoft.com/en-us/azure/security/fundamentals/isolation-choices
2) https://docs.microsoft.com/en-us/azure/security/fundamentals/infrastructure-components
These concerns are important for us to provide Confidence to our Clients.
Hope to get reply soon from ur End.